Compliance with the General Data Protection Regulation ‘GDPR’
We are committed to protecting personal data and complying with data protection legislation in all territories in which we operate.
In accordance with GDPR we ensure that we:
- have a legal basis to process personal data of natural living persons
- are transparent with data subjects regarding processing of their personal data
- take appropriate organisational and technical security measures to protect personal data
- inform data subjects of their Rights
The GDPR harmonises free movement of personal data within the European Union. The European Commission may also grant certain countries an adequacy status; such countries currently include the Isle of Man, Guernsey, Jersey and Switzerland.
Protection is in place for data processed outside the European Union in countries which do not have adequacy status from the Commission (for example, the United States of America, South Africa or Mauritius). For more information email moc.puorgdnaltiam@noitcetorpatad for a copy of applicable safeguards.
When a Maitland entity located outside the EU processes the personal data of a data subject who is in the EU it must designate a representative in the EU. Our representative in the EU is our Luxembourg Office. Data subjects and supervisory authorities can address any issues relating to data protection to the representative in the EU in addition to or instead of the Maitland entity located outside the EU.
Under article 77 of the GDPR, data subjects can make a complaint to the supervisory authority including the Member State in which they reside or work or the place of the alleged infringement.